CVE-2019-11490

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-11490

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-11490.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-11490

Published

2019-04-24T03:29:00.267Z

Modified

2025-11-14T09:04:51.624418Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in Npcap 0.992. Sending a malformed .pcap file with the loopback adapter using either pcapsendqueuequeue() or pcapsendqueuetransmit() results in kernel pool corruption. This could lead to arbitrary code executing inside the Windows kernel and allow escalation of privileges.

References

https://github.com/nmap/nmap/issues/1568

Affected packages

Git / github.com/nmap/npcap

Affected ranges

Type: GIT
Repo: https://github.com/nmap/npcap
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

b67d7eec5ae9e15598ad760055fc89dae68b92e4

Affected versions

sdk-1.*

sdk-1.01

v0.*

v0.01

v0.01-r2

v0.02

v0.02-r2

v0.02-r3

v0.02-r4

v0.03

v0.03-r2

v0.03-r3

v0.03-r4

v0.03-r5

v0.03-r6

v0.04

v0.04-r2

v0.04-r3

v0.04-r4

v0.04-r5

v0.04-r6

v0.04-r7

v0.04-r8

v0.04-r9

v0.05

v0.05-r10

v0.05-r11

v0.05-r12

v0.05-r13

v0.05-r14

v0.05-r15

v0.05-r16

v0.05-r2

v0.05-r3

v0.05-r4

v0.05-r5

v0.05-r6

v0.05-r7

v0.05-r8

v0.05-r9

v0.06

v0.06-r10

v0.06-r11

v0.06-r12

v0.06-r13

v0.06-r14

v0.06-r15

v0.06-r16

v0.06-r17

v0.06-r18

v0.06-r19

v0.06-r2

v0.06-r2.1

v0.06-r3

v0.06-r4

v0.06-r5

v0.06-r6

v0.06-r7

v0.06-r8

v0.06-r9

v0.07

v0.07-r10

v0.07-r11

v0.07-r12

v0.07-r13

v0.07-r14

v0.07-r15

v0.07-r16

v0.07-r17

v0.07-r2

v0.07-r3

v0.07-r4

v0.07-r5

v0.07-r6

v0.07-r7

v0.07-r8

v0.07-r9

v0.08

v0.08-r10

v0.08-r2

v0.08-r3

v0.08-r4

v0.08-r5

v0.08-r6

v0.08-r7

v0.08-r8

v0.08-r9

v0.09

v0.09-r10

v0.09-r11

v0.09-r12

v0.09-r13

v0.09-r2

v0.09-r3

v0.09-r4

v0.09-r5

v0.09-r6

v0.09-r7

v0.09-r8

v0.09-r9

v0.10

v0.10-r10

v0.10-r11

v0.10-r12

v0.10-r13

v0.10-r14

v0.10-r15

v0.10-r16

v0.10-r17

v0.10-r18

v0.10-r2

v0.10-r3

v0.10-r4

v0.10-r5

v0.10-r6

v0.10-r7

v0.10-r8

v0.10-r9

v0.11

v0.78

v0.78-r2

v0.78-r3

v0.78-r4

v0.78-r5

v0.80

v0.81

v0.82

v0.83

v0.84

v0.85

v0.86

v0.90

v0.91

v0.92

v0.93

v0.94

v0.95

v0.96

v0.97

v0.98

v0.99-r1

v0.99-r2

v0.99-r3

v0.99-r4

v0.99-r5

v0.99-r6

v0.99-r7

v0.99-r8

v0.99-r9

v0.991

v0.992

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-11490.json"